Database Access Control Methods Patents (Class 707/781)
-
Patent number: 10147115Abstract: Embodiments of a supplemental message display method and system are described. Supplemental messages to be displayed on the client display of a network client are defined and comprise content that is separate from content generated by any application currently executed on the network client. A virtual desktop view is served from a server computer to the network client. The virtualization layer defines a screen region on the virtual desktop view of the client display device through for the display of one or more of the supplemental messages. The virtualization layer controls the size, location, color, and transparency level of the defined screen region. The defined screen region is made persistent to ensure the continual display of the supplemental message. The supplemental message content is provided to the network client and interactive user input is received through the displayed message.Type: GrantFiled: March 28, 2012Date of Patent: December 4, 2018Assignee: VMware, Inc.Inventors: Rishi Bidarkar, Banit Agrawal, Vikram Makhija, Uday Kurkure, Jennifer Anderson
-
Patent number: 10129100Abstract: Some embodiments provide a method for a system that enforces policy for a network. The method receives (i) a first set of network state data from a first cloud management application that manages a first aspect of the network and stores its network state data in a first format and (ii) a second set of network state data from a second cloud management application that manages a second aspect of the network and stores its network state data in a second format. The method stores the first and second sets of network state data in a single, unified data format. The method monitors the stored sets of network state data to determine whether the network state violates one or more network policies that constrain the network state received from the first and second cloud management applications.Type: GrantFiled: September 30, 2014Date of Patent: November 13, 2018Assignee: VMware, Inc.Inventors: Timothy Hinrichs, Peter J. Balland, III, Martin Casado, Pierre-Emmanuel Ettori
-
Patent number: 10114780Abstract: An information processing apparatus in which a plurality of applications operate, the apparatus comprising: a detection unit which detects a change, in a display unit, of screens respectively corresponding to the plurality of applications; and a control unit which performs control when, in accordance with a screen of an application displayed in the display unit, the application exclusively uses a USB device USB-connected to the information processing apparatus; wherein if a change of the screen is detected by the detection unit, the control unit performs control so as to forcibly close usage of the USB device by an application for which usage of the USB device is permitted, and permit usage of the USB device to an application corresponding to a screen after the change.Type: GrantFiled: August 16, 2016Date of Patent: October 30, 2018Assignee: Canon Kabushiki KaishaInventor: Katsuya Sakai
-
Patent number: 10114932Abstract: Adapting a mobile or other application (“app”) to a partitioned environment is disclosed. In various embodiments, a “secure zone” or other logical partition is created and enforced at least in part by adapting a mobile or other app to behave in a manner required by and/or otherwise associated with the secure zone or other partition and which behavior is or in various embodiments may be different than a native behavior of the mobile or other app as designed and written by an application developer of the app.Type: GrantFiled: July 27, 2016Date of Patent: October 30, 2018Assignee: MOBILE IRON, INC.Inventors: Eric M. Marion, Nitin Sonawane
-
Patent number: 10057200Abstract: Responsive to each of a plurality recipients of an electronic communication accessing the electronic communication and accessing information that is associated with the electronic communication but not contained in a body of the electronic communication, activity information relating to activities of respective electronic communication recipients accessing information associated with the electronic communication can be received. A request to receive at least one recommendation as to who is able to provide information pertaining to the electronic communication can be received from another electronic communication recipient. Responsive to receiving the request, each of the electronic communication recipients can be rated to generate at least one recommendation as to who is able to provide information pertaining to the electronic communication, the recommendation based, at least in part, on the received activity information and respective weighted attributes.Type: GrantFiled: January 31, 2017Date of Patent: August 21, 2018Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Al Chakra, Liam Harpur, Michelle M. Purcell, John Rice
-
Patent number: 10031971Abstract: A system and associated methods for responding to a request for a web page containing dynamic content by generating and delivering a static version of the requested page and content. Specifically, embodiments are directed to a system and methods for receiving a request for dynamic web content at a server, instantiating a virtual browser within an execution environment running on the server, loading the requested dynamic web content into the virtual browser, executing the executable content of the requested dynamic web content (thereby creating a corresponding static version of the requested dynamic web content), and delivering the static version in response to the request.Type: GrantFiled: January 8, 2014Date of Patent: July 24, 2018Assignee: NETSUITE INC.Inventor: Yu Zhe Han
-
Patent number: 10019449Abstract: Embodiments of the invention are directed to systems, methods and computer program products for converting MLOAD and TPUMP operations. In some embodiments, a system is configured to: receive an input production parameter, wherein the input production parameter is associated with a load utility and defines a library of parameters, wherein the library of parameters defines a first syntax; convert the first syntax of the library of parameters to a second syntax, wherein the second syntax is associated with the load utility; validate the second syntax of the library of parameters; and write an output parameter to a memory location based on positive validation of the second syntax of the library of parameters.Type: GrantFiled: May 20, 2016Date of Patent: July 10, 2018Assignee: Bank of America CorporationInventors: Sushanta Samantaray, Naga Lakshmi Vanga, Nagaraju Mahankali, Dineshkumar Mohan
-
Patent number: 10019450Abstract: Embodiments of the invention are directed to systems, methods and computer program products for converting MLOAD and TPUMP operations. In some embodiments, a system is configured to: receive an input production parameter, wherein the input production parameter is associated with a load utility and defines a library of parameters, wherein the library of parameters defines a first syntax; convert the first syntax of the library of parameters to a second syntax, wherein the second syntax is associated with the load utility; validate the second syntax of the library of parameters; and write an output parameter to a memory location based on positive validation of the second syntax of the library of parameters.Type: GrantFiled: May 20, 2016Date of Patent: July 10, 2018Assignee: Bank of America CorporationInventors: Sushanta Samantaray, Naga Lakshmi Vanga, Nagaraju Mahankali, Dineshkumar Mohan
-
Patent number: 10019499Abstract: Embodiments relate to payload storage format for storing data in support of an aggregation function. As an input is subject to aggregation, the input is evaluated to ascertain a payload format for the aggregation. It is understood that there is more than one payload format. An evaluation of the aggregation key is a factor in the initial payload format. If the key is an addition to an existing aggregation, the evaluation considers changing the format of the payload to address processing and/or memory efficiency for the aggregation. The evaluation and the format change takes place dynamically so that the aggregation may continue.Type: GrantFiled: March 2, 2017Date of Patent: July 10, 2018Assignee: International Business Machines CorporationInventors: Ronald J. Barber, Vincent Kulandai Samy, Sam S. Lightstone, Guy M. Lohman, Ippokratis Pandis, Vijayshankar Raman, Gregory R. Stager, Wayne J. Young, Liping Zhang
-
Patent number: 9984083Abstract: A method, article of manufacture, and apparatus for managing data. In some embodiments, this includes receiving a query from a client, based on the received query, analyzing a catalog for location information, based on the analysis, determining a first storage system, an associated first file system, an associated first protocol translator, a second storage system, an associated second file system, and an associated second protocol translator, identifying a first data and a second data, wherein the first data is stored on the first storage system, and the second data is stored on the second storage system, running a first job on the first data using the associated first protocol translator, wherein the first job is not a native job of the first file system, and running a second job on the second data using the associated second protocol translator, wherein the second job is not a native job of the second file system.Type: GrantFiled: March 29, 2013Date of Patent: May 29, 2018Assignee: EMC IP Holding Company LLCInventors: Sameer Tiwari, Milind Arun Bhandarkar, Bhooshan Deepak Mogal
-
Patent number: 9986291Abstract: A method for managing license information for playback of content, includes transmitting certificate information of a storage device to a license serve, updating a certificate revision list received from the license server on the basis of the certificate information, receiving encrypted license information allowing the content to be played through a first session established between the storage device and the license server, the first session being identified by session identification information, and decrypting the encrypted license information and storing the decrypted license information to a secure region.Type: GrantFiled: July 10, 2014Date of Patent: May 29, 2018Assignee: LG ELECTRONICS INC.Inventors: Sunghyun Cho, Jingu Choi, Youngjun Jo, Soyoung Kim, Youngwook Kang
-
Patent number: 9984378Abstract: A social networking system leverages information obtained regarding user interactions with applications hosted through the social networking system as well as information obtained regarding purchases of application-related digital items and digital currencies to provide insight into user behavior. The social networking system can use these insights to enhance the user's experience of the applications, purchases, and the social networking system generally. For example, the social networking system can customize transaction flows, provide credit referrals, and provide users with aggregated yet personally tailored sales information.Type: GrantFiled: October 19, 2011Date of Patent: May 29, 2018Assignee: Facebook, Inc.Inventor: Deborah Liu
-
Patent number: 9965560Abstract: An apparatus, system and method for providing search results based on a social distance from a user are provided. The method includes receiving a search query from a user, setting a value representing a social distance from the user, the social distance including one or more levels, gathering results corresponding to the search query for each level of social distance, and providing the gathered results to the user.Type: GrantFiled: February 2, 2015Date of Patent: May 8, 2018Assignee: Samsung Electronics Co., Ltd.Inventors: Xiang Sun, Luyi Wang, Peter King
-
Patent number: 9953104Abstract: A method and system for controlling access to data. Each dataset of L datasets is stored, via storage access controller (SAC) software external to an operating system, on at least one physical storage device. Each dataset is independently accessible in accordance with an access permission type assigned to each dataset independently selected for each dataset from N unique access permission types. N?2 and L?N. Control of access to each dataset stored on the at least one physical storage device is configured to enforce, via the SAC, access to each dataset in accordance with the access permission type assigned to each dataset. The operating system is unable to provide the control of access to each dataset to which access is enforced by the SAC in accordance with the access permission type assigned to each dataset and which is stored on the at least one physical storage device.Type: GrantFiled: June 18, 2014Date of Patent: April 24, 2018Assignee: International Business Machines CorporationInventor: Andrei lakovlev
-
Patent number: 9929973Abstract: There is disclosed a method of and system for providing access to a file from a user to a web resource, without the web resource needing to store the file on its server.Type: GrantFiled: April 7, 2015Date of Patent: March 27, 2018Assignee: YANDEX EUROPE AGInventor: Vladimir Alexandrovich Rusinov
-
Patent number: 9930048Abstract: An electronic device connects to a network associated with a service provider via a router at a home location. During a time interval, the electronic device provides information specifying a network address of the router to an authentication computer when the electronic device is connected to a network. The authentication computer uses the received information to determine a connection pattern of the electronic device. Moreover, the authentication computer identifies that the electronic device is at the home location based on the connection pattern. Then, the authentication computer provides, to an accounting computer associated with the service provider, a request to allow the electronic device to access a wireless network associated with the service provider at a remote location (which is other than the home location).Type: GrantFiled: September 30, 2014Date of Patent: March 27, 2018Assignee: Apple Inc.Inventors: Kapil Chhabra, Artiom Shamis, Maziar Brumand
-
Patent number: 9894262Abstract: There is provided a display control apparatus including: a display control unit configured to cause a display apparatus to display a live preview image generated based on image data obtained through an image sensor, and one or more processed images generated using respective image processing conditions based on one of the image data which has been obtained at some time point; and a determination unit configured to determine whether or not a predetermined user operation has been recognized. If it is determined that the predetermined user operation has been recognized, the display control unit updates the one or more processed images to be displayed.Type: GrantFiled: November 15, 2013Date of Patent: February 13, 2018Assignee: SONY CORPORATIONInventors: Yousuke Kawana, Tsubasa Tsukahara, Tomoya Narita, Maki Imoto, Takuro Noda
-
Patent number: 9860109Abstract: Improved techniques of identifying when a device needs of service involve using data analytics to determine conditions when a device administrator of a computerized device is to be sent an alert regarding that device. Along these lines, a device monitoring system receives state data from a device that indicates the device is in a particular state, e.g., running certain applications, using some percentage of the processor and memory capacity, etc. The device monitoring system maps the device state data to a decision of whether or not to send a device administrator an alert concerning the device. The decision itself is a result of applying a model to the state data that is derived from the application of data analytics on historical device state data and administrator login data.Type: GrantFiled: May 7, 2014Date of Patent: January 2, 2018Assignee: GetGo, Inc.Inventors: Christopher K. Koverman, Nikolay Avrionov, Ashish V. Thapliyal
-
Patent number: 9836331Abstract: Method and system are provided for updating data at a shared resource in a concurrent user environment. The method includes: a first client application carrying out the steps of: pulling data from a shared resource for update wherein the data includes a timestamp of a last update; requesting a lock on the data only allowing updates from the first client for a set period of time; working on the data whether or not a lock is in place for the first client application. Wherein when a first client application applies to update the data, a check is carried out to compare the timestamp of the data updated by the first client application with the current timestamp of the data, and if these do not match, the update fails.Type: GrantFiled: February 19, 2015Date of Patent: December 5, 2017Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Amanda E. Chessell, Fenglian Xu
-
Patent number: 9792576Abstract: Controlling drones and vehicles in package delivery, in one aspect, may include routing a delivery vehicle loaded with packages to a dropoff location based on executing on a hardware processor a spatial clustering of package destinations. A set of drones may be dispatched. A drone-to-package assignment is determined for the drones and the packages in the delivery vehicle. The drone is controlled to travel from the vehicle's dropoff location to transport the assigned package to a destination point and return to the dropoff location to meet the vehicle. The delivery vehicle may be alerted to speed up or slow down to meet the drone at the return location, for example, without the delivery vehicle having to stop and wait at the dropoff location while the drone is making its delivery.Type: GrantFiled: October 24, 2016Date of Patent: October 17, 2017Assignee: International Business Machines CorporationInventors: Hani T. Jamjoom, David M. Lubensky, Justin G. Manweiler, Justin D. Weisz
-
Patent number: 9792361Abstract: A system and method for interacting with a social network database. A user's spoken request is transcribed and associated with metadata comprising location data and sent through a communication port of a mobile electronic device to a social network database. The social network database, in response to the communication, produces a response dependent on the transcribed information and metadata, which is returned to the mobile electronic device, and presented to the user. An ad may be included in the presentation to the user.Type: GrantFiled: May 22, 2013Date of Patent: October 17, 2017Inventor: James L. Geer
-
Patent number: 9781115Abstract: To authenticate nodes, a connection between a first node and a second node may be identified. A first set of nodes having connections with the first node and assigned to a first plurality of clusters may be identified. A second set of nodes having connections with the second node and assigned to a second plurality of clusters may be identified. A first distribution of clusters may be generated based on the first set of nodes. A second distribution of clusters may be generated based on the second set of nodes. The first distribution and the second distribution may be analyzed. An authenticity metric for at least one of the first node and the second node may be generated based on the analyzing the first distribution and the second distribution.Type: GrantFiled: June 22, 2015Date of Patent: October 3, 2017Assignee: Facebook, Inc.Inventor: Stephen Charles Heise
-
Patent number: 9781479Abstract: Methods and systems are described for a media guidance application that provides recommendations to a user viewing a media asset. For example, the media guidance application may provide a recommendation of a media asset based on a user's profile and may modify the user's profile based on the user's actions and keywords in the content of the media asset. For example, the media guidance application may determine whether the media asset is of interest to a user and in response may update the user's profile based on keywords in the media asset. If the media guidance application determines that the media asset is of interest to the user, it may add keywords in the content of the media asset to the user's profile and increase their corresponding weights. Otherwise, the media guidance application may decrease the weights in the user's profile corresponding to keywords in the media asset.Type: GrantFiled: February 29, 2016Date of Patent: October 3, 2017Assignee: Rovi Guides, Inc.Inventors: Walter R. Klappert, Dustin Shaw, Michael R. Nichols, Christy Garcia, Tricia Nelson, Derek Martin
-
Patent number: 9773121Abstract: A security program installed or in communication with a computer is provided. The security program is configured to intercept disk (I/O) operations that read/write from/to disk. This allows the security program to confirm and control access to data based on security rules. Further, the security program can categorize data based on security rules and then format and store data on disk in a format that prevents access by application(s) of the computer. The security program is further configured to re-format data to be accessible by the application in a format accessible by the application(s) when a request to access the data complies with security rules.Type: GrantFiled: September 24, 2015Date of Patent: September 26, 2017Assignee: Tangoe, Inc.Inventors: Jaan Leemet, Paul Schmidt
-
Patent number: 9769096Abstract: There are provided a method, apparatus, system and computer readable storage medium of adding an instant message contact. The method includes: receiving a joining-in request for a group from a client where a user locates, the joining-in request comprising a group identifier; acquiring audio and/or video information of other user in the group, based on the group identifier; and transmitting the audio and/or video information of the other user to the client where the user locates, for adding by the client where the user locates the instant message contact based on the audio and/or video information of the other user. Thereby, the mutual trust between unknown users is improved, and the success ratio of adding an unknown user as a contact and the ratio of turning into a contact from an unknown user are increased.Type: GrantFiled: April 29, 2014Date of Patent: September 19, 2017Assignee: Tencent Technology (Shenzhen) Company LimitedInventors: Xin Xie, Xiaoxiang Zuo, Shiqi Xu, Xianxian Zhang, Yecheng Xian, Xiaoyuan Gu, Junbiao Chen
-
Patent number: 9754129Abstract: A data securing device according to an embodiment includes a processor that executes a process including: receiving individual data and a parameter for anonymization, using the parameter to suppress data that does not satisfy k-anonymity among data that is included in various attributes of records in the individual data, and suppressing data that is extracted from the data at random; and outputting individual data in which data is suppressed at the receiving.Type: GrantFiled: December 9, 2015Date of Patent: September 5, 2017Assignee: FUJITSU LIMITEDInventor: Yuji Yamaoka
-
Patent number: 9710664Abstract: A system for protecting data managed in a cloud-computing network from malicious data operations includes an Internet-connected server and software executing on the server from a non-transitory physical medium, the software providing a first function for generating one or more security tokens that validate one or more computing operations to be performed on the data, a second function for generating a hash for each token generated, the hash detailing, in a secure fashion, the operation type or types permitted by the one or more tokens, a third function for brokering two-party signature of the one or more tokens, and a fourth function for dynamically activating the one or more signed tokens for a specific time window required to perform the operations permitted by the token.Type: GrantFiled: September 7, 2012Date of Patent: July 18, 2017Assignee: Amrita Vishwa VidyapeethamInventors: Shiju Sathyadevan, P. Venkat Rangan, Krishnashree Achuthan
-
Patent number: 9697083Abstract: Provided are a computer program product, system, and method for using geographical location information to provision multiple target storages for a source device. A determination is made of a geographical location of the source device and a distance between the source device and each of the target storages and between each pair of target storages. A determination is further made of qualifying k-tuples of the target storages, wherein each k-tuple comprises a group of k target storages to which the source data is to be backed-up. A qualifying k-tuple has one target storage that satisfies a distance requirement with respect to the source device and a distance between any two target storages in the k-tuple satisfies the distance requirement. A selected qualifying k-tuple is indicated to use to backup the source data at the k target storages in the qualifying k-tuple.Type: GrantFiled: November 21, 2014Date of Patent: July 4, 2017Assignee: International Business Machines CorporationInventors: Matthew J. Anglin, David M. Cannon, Colin S. Dawson, Howard N. Martin
-
Patent number: 9697084Abstract: Provided are a computer program product, system, and method for using geographical location information to provision multiple target storages for a source device. A determination is made of a geographical location of the source device and a distance between the source device and each of the target storages and between each pair of target storages. A determination is further made of qualifying k-tuples of the target storages, wherein each k-tuple comprises a group of k target storages to which the source data is to be backed-up. A qualifying k-tuple has one target storage that satisfies a distance requirement with respect to the source device and a distance between any two target storages in the k-tuple satisfies the distance requirement. A selected qualifying k-tuple is indicated to use to backup the source data at the k target storages in the qualifying k-tuple.Type: GrantFiled: August 17, 2015Date of Patent: July 4, 2017Assignee: International Business Machines CorporationInventors: Matthew J. Anglin, David M. Cannon, Colin S. Dawson, Howard N. Martin
-
Patent number: 9659027Abstract: A synchronization window for synchronizing data for a calendar in a client calendar data store on a calendar data client computer system with data for the calendar in a server calendar data store on a calendar data server computer system can be calculated using a current time. A request for synchronization data for calendar items for the calendar with calendar times that are within the synchronization window can be sent to the calendar data server. One or more responses to the request can be received from the calendar data server. The response(s) can include received records for calendar items that are at least partially within the synchronization window. The received records can include a master record of a recurring calendar item and an instance record of an occurrence of the recurring calendar item. The received records for the calendar items can be incorporated in the client calendar data store.Type: GrantFiled: January 13, 2016Date of Patent: May 23, 2017Assignee: Microsoft Technology Licensing, LLCInventors: Sina Hakami, Juan V. Esteve Balducci, Patrick Tousignant
-
Patent number: 9648049Abstract: The present invention provides a system and method for real-time communication signaling between HTML5 endpoints and the IMS Core of a telecommunication network. The method adapts complex signaling on the server-side into simple operations towards the Web. In an embodiment the system includes a network-side controller communicating over an Internet domain protocol with a client-side controller. The client-side controller provides a JavaScript API to encapsulate the signaling layer. The network-side controller includes session border control functionality, terminates Internet domain communications with the client-side, parses, and normalizes the Internet domain communications into an internal protocol suitable for communication with telecommunications network systems. The system thereby provides a dedicated signaling channel with session border control for applications on the client to interact with telecommunications network services.Type: GrantFiled: October 31, 2013Date of Patent: May 9, 2017Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Binod Pankajakshy Gangadharan, Phelim O'Doherty, Sharath Rajasekar, Boris Selitser, Honggang Frank Zhu, Karthic Loganathan
-
Patent number: 9626434Abstract: Systems, methods and computer program products for using searchable aggregate indices associated with non-aggregated value storage. In one method, a search system stores metadata values for each of a plurality of objects in a storage unit. The metadata values are stored in corresponding value storage locations that are associated with an identifiable metadata fields. An aggregate index is provided which includes a dictionary of terms that are contained in metadata values associated with a designated set of the metadata fields. The aggregate index is searched for one or more specific search terms, and one or more of the metadata values are retrieved from the value storage locations in response to the search, where the individual metadata fields associated with the retrieved metadata values are identified.Type: GrantFiled: August 22, 2012Date of Patent: April 18, 2017Assignee: Open Text SA ULCInventor: Patrick Thomas Sidney Pidduck
-
Patent number: 9621673Abstract: Customer initiated tenant operations are presented that are provided within a work center of a client cloud application. System supported tenant operations combined with automatic validations and determinations are exposed directly to the customer via the work center. Customers are able to coordinate and initiate tenant operations using a specific work center called a service control center, which is added to other work centers that build the cloud enterprise applications or products the customers are using. The enterprise application embedded service control center is connected to a central service control center, which is located in a service provider cockpit system. The central service control center enables the execution of customer specific tenant operations that are tailored to the customer's landscape and guarantees the tenant isolation.Type: GrantFiled: December 12, 2013Date of Patent: April 11, 2017Assignee: SAP SEInventors: Bare Said, Frank Jentsch
-
Patent number: 9607171Abstract: Methods, systems, and computer program products for preventing sharing of sensitive information through code repositories are provided herein. A method includes detecting one or more items of sensitive information in a check-in associated with a given user in a shared version management system; automatically refactoring the one or more items of sensitive information in the check-in by externalizing the one or more items of sensitive information as an encrypted file; and upon acceptance by the user of one or more changes to the check-in, automatically (i) decrypting the encrypted file using one or more code repository credentials associated with the given user, and (ii) incorporating the one or more items of sensitive information into the check-in.Type: GrantFiled: November 10, 2014Date of Patent: March 28, 2017Assignee: International Business Machines CorporationInventors: Pankaj Dhoolia, Senthil Kumar Kumarasamy Mani, Rohan Raju Padhye, Vibha Singhal Sinha
-
Patent number: 9606695Abstract: In one embodiment, a method includes while a user is interacting with a mobile device, displaying a notification on a screen of the mobile device automatically and without any user input to the mobile device, the notification informing the user an event that has occurred recently and is not related to the user's interaction with the mobile device.Type: GrantFiled: November 14, 2012Date of Patent: March 28, 2017Assignee: Facebook, Inc.Inventor: Michael Matas
-
Patent number: 9600527Abstract: Embodiments of the disclosure provide a method, system, and computer program product for managing a windowing operation. The method can include determining a sentinel value that defines a start of a grouping window for a stream of tuples and a terminating sentinel value that defines the end of the grouping window based upon an attribute contained in the stream of tuples. The stream of tuples can be monitored for the sentinel value and the terminating sentinel value by a stream operator. The stream operator can initiate a windowing operation that defines the start of the grouping window in response to a presence of the sentinel value and terminate the windowing operation in response to a presence of the terminating sentinel value.Type: GrantFiled: October 18, 2013Date of Patent: March 21, 2017Assignee: International Business Machines CorporationInventors: Michael J. Branson, Bradford L. Cobb, John M. Santosuosso
-
Patent number: 9594901Abstract: Methods, systems, and products are disclosed for securing access to a file system. A directory is established in a hierarchical file structure having access permission defined by a first owner. A subdirectory is established in the directory. A sub-level subdirectory is established in the subdirectory having access permissions defined by a second owner. The subdirectory is publically accessible to anyone satisfying the access permission defined by the first owner, such that a change directory system call is executed for a user in the subdirectory, even though the user has not authenticated the access permission defined by the second owner.Type: GrantFiled: December 2, 2008Date of Patent: March 14, 2017Assignee: AT&T INTELLECTUAL PROPERTY I, L.P.Inventors: Arthur Zaifman, Govind Chidambaram, Jimmy Tant, Suraj Kumar Varma
-
Patent number: 9594925Abstract: A server is implemented with a modified file open action, which, when a user performs the modified open, initially opens a file without locking the file. When a user indicates (either explicitly or implicitly) that the user is attempting to or intending to open the file, the file can then be locked for editing. In this way, the default action when a user requests a file is to open the file without denying other users access to the file. Then, when the user indicates that editing should occur, the lock for the file is obtained.Type: GrantFiled: February 1, 2016Date of Patent: March 14, 2017Assignee: Microsoft Technology Licensing, LLCInventors: Hani Saliba, Noah B. Edelstein, Hai Liu
-
Patent number: 9582505Abstract: A content player receives user-specific information from different users and associates the information with content. Subsequently, the player receives a request to perform a content-altering operation. In response, the player performs the operation such that the information for the requesting user is affected, but not the information for other users. The information may include a placeholder, an indication as to whether the content and/or the entire content has been accessed, a protection status indicating whether or not the content can be deleted, and so on. The information may be added to and/or configured to accompany and/or otherwise be associated with the content. The player may identify the user so that different information for different users can be associated with the content for the respective user, such as by prompting the user to select an identifier from a list or perform a “log in.Type: GrantFiled: March 24, 2011Date of Patent: February 28, 2017Assignee: EchoStar Technologies L.L.C.Inventor: Michael Alexander
-
Patent number: 9569240Abstract: A system and method are described for provisioning and managing virtual instances of a computing application running within a public virtualization space (referred to as a hosted service system). A hosted service system may be configured to provide automated administration of the computing application, replacing the administration tasks that would otherwise be performed by the customer when running in an on-premise production deployment and to provide encrypted networking and other services that are specific to the public virtualization environment and are designed to provide a secure integration fabric between a customer's own private data center and virtual instances of the computing application running within an insecure public virtualization service.Type: GrantFiled: July 21, 2009Date of Patent: February 14, 2017Assignee: Adobe Systems IncorporatedInventor: David Tompkins
-
Patent number: 9554008Abstract: A web browser section makes, to a second web server section, a request for acquisition of operation screen data of an application program executed in an information processing device, when an instruction to activate the application program is received. The second web server section transmits the operation screen data of the application program to the web browser section in accordance with and in response to the request for acquisition. The displaying section displays an operation screen in accordance with the operation screen data obtained by the web browser section from the second web server section.Type: GrantFiled: April 17, 2012Date of Patent: January 24, 2017Assignee: Sharp Kabushiki KaishaInventor: Kunihiko Tsujimoto
-
Patent number: 9547773Abstract: A trusted device includes a secure interface and a host interface, the secure interface being isolated from the host interface by an isolated environment. A write file of the host interface receives an entry from an untrusted host device connected to the trusted device. A processor of the isolated environment retrieves the entry and determines log data associated with the entry, such as the date and time of the entry. Using the log data, the processor records an event log entry in a secure storage of the isolated environment. Once recorded, the entry cannot be deleted or altered. An authorized user, however, can then access the event log entry from the secure storage, such as by providing a request for the event log entry via the secure interface of the trusted device and/or the host interface of the trusted device.Type: GrantFiled: December 31, 2014Date of Patent: January 17, 2017Assignee: GOOGLE INC.Inventors: Peiter Charles Zatko, Dominic Rizzo
-
Patent number: 9547287Abstract: A computer-enabled system, method, and medium provides intellectual property analyses, for example, patent claim charts, respective to the analyzed intellectual property and a target product or other intellectual property. Analyses are stored to enable searching/reporting across multiple analyses. Units of the analysis are associated with context, inherited, e.g., from the intellectual property document's assignment to a relative role within the organizational hierarchy; and associated with a context derived from the analysis itself. The analysis and respective documents and/or targets of the analysis can be searched/retrieved/analyzed from the hierarchical analysis, the context analysis, and/or the content of the analysis. Each analysis need not be stored as a separate document. The representation of the analysis may by static or dynamic.Type: GrantFiled: September 14, 2012Date of Patent: January 17, 2017Inventor: Eugene M. Lee
-
Patent number: 9547769Abstract: Embodiments of the invention broadly described, introduce systems and methods for protecting data at a data protection hub using a data protection policy. One embodiment of the invention discloses a method for protecting unprotected data. The method comprises receiving a data protection request message comprising unprotected data and one or more policy parameters, determining a data protection transformation using the policy parameters, performing the data protection transformation on the unprotected data to generate protected data, and sending the protected data.Type: GrantFiled: July 3, 2013Date of Patent: January 17, 2017Assignee: Visa International Service AssociationInventors: Selim Aissi, Sekhar Nagasundaram
-
Patent number: 9509745Abstract: In accordance with an embodiment, described herein is a system and method for programming server-side real-time web communication applications. A JAVA application programming interface (API) is provided for web application developers to write JAVA applications on a server to control, manage, and mediate HTML5 endpoints that communicate with the JAVA applications. Each JAVA application can be a JAVA component that are annotated with a plurality of JAVA objects provided by the JAVA API, wherein the plurality of JAVA objects can also establish communication between HTML5 applications endpoints, and holding the state of the communication. The container can integrate with other enterprise technologies such as JMS and enable the JAVA applications to integrate with applications and services exposed by other providers, e.g., FACEBOOK. The JAVA API can be used to write applications that can connect with legacy IMS systems and services using existing JAVA APIs such as SIP servlet.Type: GrantFiled: October 31, 2013Date of Patent: November 29, 2016Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Binod Pankajakshy Gangadharan, Weigan Ji, Boris Selitser, Honggang Frank Zhu, Karthic Loganathan
-
Patent number: 9471639Abstract: Embodiments of the disclosure provide a method, system, and computer program product for managing a windowing operation. The method can include determining a sentinel value that defines a start of a grouping window for a stream of tuples and a terminating sentinel value that defines the end of the grouping window based upon an attribute contained in the stream of tuples. The stream of tuples can be monitored for the sentinel value and the terminating sentinel value by a stream operator. The stream operator can initiate a windowing operation that defines the start of the grouping window in response to a presence of the sentinel value and terminate the windowing operation in response to a presence of the terminating sentinel value.Type: GrantFiled: September 19, 2013Date of Patent: October 18, 2016Assignee: International Business Machines CorporationInventors: Michael J. Branson, Bradford L. Cobb, John M. Santosuosso
-
Patent number: 9471807Abstract: Exemplary methods include receiving a message from an agent requesting to perform a first set of operations on a first set of storage namespaces mapped to a first set of file system management objects (FSMOs) in the PBBA. The methods include determining whether to allow or deny the first set of operations based on information stored in a plurality of security units, each security unit comprising of an operation set identifier (ID), a set of FSMO IDs, and an agent ID, wherein the agent ID identifies an agent that is allowed to perform a set of operations identified by the operation set ID on a set of FSMOs in the PBBA identified by the set of FSMO IDs, and in response to determining to allow the first set of operations, performing the first set of operations.Type: GrantFiled: November 5, 2014Date of Patent: October 18, 2016Assignee: EMC CorporationInventors: Subhasish Chakraborty, Richa Saraf, Ephraim Dror
-
Patent number: 9473581Abstract: The present invention provides a system and method for real-time communication signaling between HTML5 endpoints and between HTML5 endpoints and the IMS Core of a telecommunications network. The method adapts complex signaling on the server-side into simple operations towards the Web. In an embodiment the system includes an integrated web-enable session border controller (WSBC) including a network-side controller/a signaling engine, a media gateway and a client-side controller. The client-side controller provides a JavaScript API to encapsulate the signaling layer. The WSBC also includes session border control functionality, terminates Internet domain communications with the client-side, parses, and normalizes the Internet domain communications into an internal protocol suitable for communication with telecommunications network systems. The system thereby provides a dedicated signaling channel with the network-side controller for applications on the client to interact with telecommunications network services.Type: GrantFiled: October 31, 2013Date of Patent: October 18, 2016Assignee: ORACLE INTERNATIONAL CORPORATIONInventors: Binod Pankajakshy Gangadharan, Boris Selitser, Amitha Pulijala, Honggang Frank Zhu, Karthic Loganathan
-
Patent number: 9438662Abstract: A secure remote assistance session between computers that are behind firewalls and/or NAT devices is provided by an arrangement that uses a terminal services (“TS”) gateway to enable utilization of a remote desktop protocol (“RDP”) connection by a terminal services client in a reverse direction to that used in a conventional terminal services session. The connection is made via a regular TS gateway protocol mechanism by which the TS client behind a firewall establishes a connection to the remote server that is typically behind a firewall that protects a corporate network. The server then functions as the terminal services client to tunnel RDP data through the established TS gateway connection through the NAT firewall to a client. Thus, the server and client reverse roles after the TS gateway connection is made to thereby enable remote viewing of the graphical user interface that is displayed by the client in support of the remote assistance session.Type: GrantFiled: April 30, 2007Date of Patent: September 6, 2016Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Meher Malakapalli, Mathew John
-
Patent number: 9430641Abstract: Adapting a mobile or other application (“app”) to a partitioned environment is disclosed. In various embodiments, a “secure zone” or other logical partition is created and enforced at least in part by adapting a mobile or other app to behave in a manner required by and/or otherwise associated with the secure zone or other partition and which behavior is or in various embodiments may be different than a native behavior of the mobile or other app as designed and written by an application developer of the app.Type: GrantFiled: November 5, 2012Date of Patent: August 30, 2016Assignee: MOBILE IRON, INC.Inventors: Eric M. Marion, Nitin Sonawane